https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png2024-02-15 15:11:212024-02-15 15:11:21Cyberattack Disrupts Production at Varta Battery Factories
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png2024-02-15 11:13:462024-02-15 11:13:46Microsoft Warns of Exploited Exchange Server Zero-Day
Discovered internally and tracked as CVE-2024-21410, this security flaw can let remote unauthenticated threat actors escalate privileges in NTLM relay attacks targeting vulnerable Microsoft Exchange Server versions.
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png2024-02-15 10:11:332024-02-15 10:11:33New Critical Microsoft Exchange Bug Exploited as Zero-Day
The network of disinformation websites, dubbed “Portal Kombat,” reproduces content from pro-Russian social media accounts and news agencies, using automation and machine translation to disseminate the content.
Microsoft on Wednesday acknowledged that a newly disclosed critical security flaw in Exchange Server has been actively exploited in the wild, a day after it released fixes for the vulnerability as part of its Patch Tuesday updates.
Tracked as CVE-2024-21410 (CVSS score: 9.8), the issue has been described as a case of privilege escalation impacting the Exchange Server.
“An attacker
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png2024-02-15 08:06:552024-02-15 08:06:55Critical Exchange Server Flaw (CVE-2024-21410) Under Active Exploitation
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png2024-02-15 02:13:152024-02-15 02:13:15Cisco Announces It is Laying Off Thousands of Workers
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png2024-02-15 01:14:302024-02-15 01:14:30Microsoft, OpenAI: Nation-States Are Weaponizing AI in Cyberattacks
The finance services giant says it was hacked — and reported the incident proactively before SEC requirements mandated it. It could be an anti-extortion move, or merely a brand protection effort.
BackBox.org offers a range of Penetration Testing services to simulate an attack on your network or application. If you are interested in our services, please contact us and we will provide you with further information as well as an initial consultation.
Cyberattack Disrupts Production at Varta Battery Factories
/in General NewsProduction at five plants of German battery maker Varta has been disrupted by a cyberattack, possibly a ransomware attack.
The post Cyberattack Disrupts Production at Varta Battery Factories appeared first on SecurityWeek.
SecurityWeek – Read More
ESET Patches High-Severity Privilege Escalation Vulnerability
/in General NewsESET has released patches for a high-severity elevation of privilege vulnerability in its Windows security products.
The post ESET Patches High-Severity Privilege Escalation Vulnerability appeared first on SecurityWeek.
SecurityWeek – Read More
New Wi-Fi Authentication Bypass Flaws Expose Home, Enterprise Networks
/in General NewsA couple of Wi-Fi authentication bypass vulnerabilities found in open source software can expose enterprise and home networks to attacks.
The post New Wi-Fi Authentication Bypass Flaws Expose Home, Enterprise Networks appeared first on SecurityWeek.
SecurityWeek – Read More
Microsoft Warns of Exploited Exchange Server Zero-Day
/in General NewsMicrosoft says a newly patched Exchange Server vulnerability (CVE-2024-21410) has been exploited in attacks.
The post Microsoft Warns of Exploited Exchange Server Zero-Day appeared first on SecurityWeek.
SecurityWeek – Read More
New Critical Microsoft Exchange Bug Exploited as Zero-Day
/in General NewsDiscovered internally and tracked as CVE-2024-21410, this security flaw can let remote unauthenticated threat actors escalate privileges in NTLM relay attacks targeting vulnerable Microsoft Exchange Server versions.
Cyware News – Latest Cyber News – Read More
France Uncovers Russian Disinformation Campaign
/in General NewsThe network of disinformation websites, dubbed “Portal Kombat,” reproduces content from pro-Russian social media accounts and news agencies, using automation and machine translation to disseminate the content.
Cyware News – Latest Cyber News – Read More
Critical Exchange Server Flaw (CVE-2024-21410) Under Active Exploitation
/in General NewsMicrosoft on Wednesday acknowledged that a newly disclosed critical security flaw in Exchange Server has been actively exploited in the wild, a day after it released fixes for the vulnerability as part of its Patch Tuesday updates.
Tracked as CVE-2024-21410 (CVSS score: 9.8), the issue has been described as a case of privilege escalation impacting the Exchange Server.
“An attacker
The Hacker News – Read More
Cisco Announces It is Laying Off Thousands of Workers
/in General NewsAbout 5 percent of Cisco’s global workforce will be affected by layoffs, the Silicon Valley-based company said.
The post Cisco Announces It is Laying Off Thousands of Workers appeared first on SecurityWeek.
SecurityWeek – Read More
Microsoft, OpenAI: Nation-States Are Weaponizing AI in Cyberattacks
/in General NewsIt’s not theoretical anymore: the world’s major powers are working with large language models to enhance their offensive cyber operations.
darkreading – Read More
Prudential Files Voluntary Breach Notice With SEC
/in General NewsThe finance services giant says it was hacked — and reported the incident proactively before SEC requirements mandated it. It could be an anti-extortion move, or merely a brand protection effort.
darkreading – Read More